SecurityRatty: Latest Articles

Fuzzor - an Oracle fuzzer

2009-01-07 05:54:58 by Slavik in Musings on Database Security

Happy New Year everyone! As promised, in this blog post I will deal with the PL/SQL fuzzer Ive created in my spare time and during flights. The goal for creating it was to provide an easy tool for the DBA to test PL/SQL code inside the database. This tested code can be internally developed or by

Tags: spare time, plsql fuzzer, easy tool, blog post, dba, database, deal, goal, provide

Blackwater shooter to be charged with Murder of Iraqi Vice President's Bodyguard.

2009-01-07 04:44:00 by John Sexton in The Bullet Proof Blog

According to the Seattle Times , the former Blackwater employee who allegedly shot and killed the bodyguard of the Vice President of Iraq in 2006 will finally be brought to Justice In a story previously discussed in this blog, Andrew Moonen of Seattle was said to be drunk when he shot and killed the Iraqi bodyguard at a checkpoint inside the...

Tags: blackwater, bodyguard, ex-blackwater employee, blackwater employee, iraqi bodyguard, discharge, shot, allegedly shot, negligent discharge

Pro Dev: Who are We? What is Our Role?

2009-01-07 03:50:55 by Erik Heidt in Art of Information Security

...Information Security guy I raised my hand, to which hequipped: Well, theyarentdoing their job then To which I quipped: Actually I do my job quite well Stereotypes In ancient times skillful warriors first made themselves invicible and then watched for vulnerability in their opponents from Formation, Art of War, Sun Tzu, 6th century B.C...

Tags: pro dev, information security guy, pretty significant cost, sun tzu, job, 6th century, key partner, role, technologies

Twitter Hacker Says Admin Password Was 'Happiness'

2009-01-07 00:30:00 by Kim Zetter in Wired Security

In an interview with Wired.com, an 18-year-old hacker with a history of celebrity pranks admits to Monday's hijacking of multiple high-profile Twitter accounts, including President-Elect Barack Obama's and the official feed for Fox News

Tags: president-elect barack obama, official feed, fox news, celebrity pranks, 18-year-old hacker, history, monday, interview, wired

Air Force Releases 'Counter-Blog' Marching Orders

2009-01-07 00:00:00 by Noah Schachtman in Wired Security

Bloggers: If you suddenly find Air Force officers leaving barbed comments after one of your posts, don't be surprised. They're just following orders

Tags: air force officers, posts, comments, suddenly, bloggers

Ad: Reality Check Security Podcast

2009-01-06 22:06:08 by rmacmich in The Silver Bullet Security Podcast

...Security Podcast with Gary McGraw The Reality Check Podcast with Gary McGraw focuses directly on software security practitioners and practical software security. Reality Checks sister podcast, the Silver Bullet Security Podcast with Gary McGraw , follows a free form interview style tailored highlight the ideas and experience of security...

Tags: reality check, reality check targets, reality check podcast, leaders, gary mcgraw, interview leaders, practical questions, practical software security, solve software security

Twitter Phishers Also Targeting Facebook

2009-01-06 20:10:06 by Editor in Digg / Security

The phishing site that was set up to hoodwink Twitter's users has a second front door that looks exactly like Facebook. The address of the fake Twitter site was twitter.access-login.com/login, but take out the "/login" part and you arrive at the dead-ringer for the Facebook homepage

Tags: twitter, facebook, hoodwink twitter, site, fake twitter site, facebook homepage, access-login, login, front door

Thoughts on ISO 27005

2009-01-06 17:10:59 by Alex in RiskAnalys.is

...Information technology Security techniques Information security risk management Technologies de linformation Techniques de sécurité Gestion du risque en sécurité de linformation As you can probably guess, Ive got opinions. And since were both here (me writing, you reading) why dont I let you know what those are I have a few disagreements...

Tags: risk, risk based, risk estimation, actual management, estimation, management, executive management, risk management, portfolio risk

Two data breaches a day!

2009-01-06 16:17:00 by Manu Namboodiri in Data Protection, Management and Leakage

And to think that the numbers might be even higher! According to the Identity Theft Resource Center in San Diego, some 656 breaches were reported in 2008, up almost 50% from the previous year. This is almost two breaches a day - and according to the article in the Washington Post , many breaches do not even get reported. So this could be even...

Tags: breaches, data protection issues, washington post, day, collective socks, chalta hai, san diego, blase, indian

The Best Capers of 2008

2009-01-06 14:28:11 by schneier in Schneier on Security

Good list

Your name:
Your email:
Describe a problem:
AntiSPAM Validation:

	Favorites
	My AOL
	My Ask Jeeves
	Blinklist
	Blogmarks
	Del.icio.us
	Digg
	Facebook
	Faves
	Furl
	Google
	Live
	Magnolia
	Netvouz
	Slashdot
	Spurl
	Technorati
	Yahoo

	Favorites
	My AOL
	My Ask Jeeves
	Blinklist
	Blogmarks
	Del.icio.us
	Digg
	Facebook
	Faves
	Furl
	Google
	Live
	Magnolia
	Netvouz
	Slashdot
	Spurl
	Technorati
	Yahoo

	Favorites
	My AOL
	My Ask Jeeves
	Blinklist
	Blogmarks
	Del.icio.us
	Digg
	Facebook
	Faves
	Furl
	Google
	Live
	Magnolia
	Netvouz
	Slashdot
	Spurl
	Technorati
	Yahoo

	Favorites
	My AOL
	My Ask Jeeves
	Blinklist
	Blogmarks
	Del.icio.us
	Digg
	Facebook
	Faves
	Furl
	Google
	Live
	Magnolia
	Netvouz
	Slashdot
	Spurl
	Technorati
	Yahoo